Download
| Alert*
oval:org.secpod.oval:def:89046105
python3-libxml2-python is installed oval:org.secpod.oval:def:89050291 This update for libxml2 fixes the following issues: - CVE-2019-19956: Reverted the upstream fix for this memory leak because it introduced other, more severe vulnerabilities . oval:org.secpod.oval:def:89050389 This update for libxml2 fixes the following issues: - CVE-2019-19956: Reverted the upstream fix for this memory leak because it introduced other, more severe vulnerabilities . oval:org.secpod.oval:def:89050505 This update for libxml2 fixes the following issues: - CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal . oval:org.secpod.oval:def:89050744 This update for libxml2 doesn"t fix any additional security issues, but correct its rpm changelog to reflect all CVEs that have been fixed over the past. oval:org.secpod.oval:def:89050248 This update for libxml2 fixes the following issues: - CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun . - CVE-2019-19956: Fixed a memory leak . - CVE-2020-7595: Fixed an infinite loop in an EOF situation . oval:org.secpod.oval:def:3300756 SUSE Security Update: Security update for libxml2 oval:org.secpod.oval:def:89047608 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c and tree.c . oval:org.secpod.oval:def:89047407 This update for python-libxml2-python fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . oval:org.secpod.oval:def:3300386 SUSE Security Update: Security update for python-libxml2-python oval:org.secpod.oval:def:89046102 This update for python-libxml2-python fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . oval:org.secpod.oval:def:89047293 This update for libxml2 fixes the following issues: - CVE-2021-3537: NULL pointer dereference in valid.c:xmlValidBuildAContentModel - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess . - CVE-2021-3517: Fixed a heap based buffer overflow in entities.c:xmlEncodeEntitiesInterna ... oval:org.secpod.oval:def:89047107 This update for libxml2 fixes the following issues: - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess . - CVE-2021-3517: Fixed a heap based buffer overflow in entities.c:xmlEncodeEntitiesInternal . - CVE-2021-3516: Fixed a use after free in entities.c:xmlEncodeEntitiesIntern ... oval:org.secpod.oval:def:89047069 This update for libxml2 fixes the following issues: - CVE-2021-3541: Fixed exponential entity expansion attack bypasses all existing protection mechanisms oval:org.secpod.oval:def:3300847 SUSE Security Update: Security update for libxml2 oval:org.secpod.oval:def:89049770 This update for libxml2 fixes the following security issues: - CVE-2018-9251: The xz_decomp function allowed remote attackers to cause a denial of service via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint - CVE-2018-14567: Prevent denial of service via a crafted ... oval:org.secpod.oval:def:3301913 Security update for libxml2 oval:org.secpod.oval:def:3301966 Security update for libxml2 oval:org.secpod.oval:def:89048764 This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed inconsistent result when hashing empty strings . * CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType . * CVE-2022-29824: Fixed integer overflow leading to out-of-bounds write in buf.c . The followin ... oval:org.secpod.oval:def:89049401 This update for libxml2 fixes the following issues: * CVE-2023-39615: Fixed crafted xml can cause global buffer overflow . |